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TITLE OF THE INVENTION 

AUTHORIZATION DEVICE, METHOD AND PROGRAM 

[0001] This application claims the benefit of priority to Japanese patent application number 
2003-200745, filed July 23, 2003, in the Japanese Patent Office, the disclosure of which is 
incorporated herein by reference. 

BACKGROUND OF THE INVENTION 

1 . Field of the Invention 

[0002] The present invention relates to an authorization device for authorizing a server to 
provide various services to clients and more particularly to authorization of clients. 

2. Description of the Related Art 

[0003] The service programs executed by a server provide various services to users who can 
operate clients through communication networks such as the Internet. Practically, various 
services include electronic mail, purchasing of products, and distribution of images and voices. 
For implementation of these services, it is essentially required to authorize users in order to 
prevent substitution and falsification of users and to identify the registered users. 

[0004] The use of an ID and password of a user in authorization technosogy is known in the 
art, as described in Japanese Published Unexamined Patent Application (kokai) No. 9-81519 
corresponding to US Patent No. 5,706,427. 

[0005] However, a certain kind of services cannot be provided, although a user can be 
identified through the authorization, because functions of client are insufficient. For example, 
the client is always required to provide audio input/output and video input/output facilities in 
order to provide services such as TV phone and TV conference to users. When such services 
are requested, the server requests confirmation that the relevant client is provided with sufficient 
functions for the services to the client or makes direct inquiry to users. Otherwise, these 
services are requested without any confirmation and sufficient services would not be provided to 
users. 

[0006] Moreover, the conventional authorization technology has requested input of a 
password to authorize users. Particularly, in recent years, users are often forced to set the 
password which is longer than a minimum length in order to assure security. When the 
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password becomes longer, users will more likely forget their passwords. Moreover, it has been 
very troublesome for users to input a longer password whenever they want to enjoy various 
services. 

SUMMARY OF THE INVENTION 

[0007] In view of achieving the aspects described above, the present invention includes an 
authorization device comprising a computer information storage section to store the information 
of a computer including unique data which identifies the computer, a unique data receiving 
section to receive, from the computer, the unique data of the computer, and a computer 
searching section to search, from the computer information storage section, the information of 
the computer corresponding to the received unique data. 

[0008] Moreover, the present invention may also be provided with a communication 
determining section to determine whether particular communication with the computer is 
possible or not with the information of computer. 

[0009] According to another aspect, the present invention includes an authorization device 
comprising an unique data receiving section to receive, from the computer, the unique data 
which identifies the computer, a user information storage section to store unique user data 
indicating a user who can use the computer corresponding to the unique data, and an 
authorizing section to authorize the user on the basis of the unique data received by the unique 
data receiving section and the user information storage section. 

[0010] According to the other aspect, the present invention includes a computer comprising 
an unique data storage section to store an unique data which identifies the computers, an 
external referenced storage region which can be referenced from external computers, a unique 
data copying section to copy the unique data stored in the unique data storage section to the 
external referenced storage region, and a unique data transmitting section to transmit the 
unique data stored in the external referenced storage region to external computers. 

[0011] According to still other aspect, the present invention includes a communication system 
to communicate between servers and clients, in which a client comprises an unique data 
storage section to store an unique data which identifies the client and a unique data transmitting 
section to transmit the unique data to servers, and a server comprises a client information 
storage section to store information of clients for each unique data, a unique data receiving 
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section to receive the unique data, and a client searching section to search information of clients 
of the received unique data. 

[0012] According to the present invention, the authorization device is capable of obtaining 
information of computers, for example, the information of types and functions of the computers 
from the received unique data of each computer and this information can be used for 
authorization. 

[0013] Moreover, the authorization device of the present invention is capable of determining 
whether communication with the computers, which requires the particular functions such as TV 
phone and TV conference, can be accomplished with the computers based on the information of 
computer. 

[0014] According to another aspect of the other present invention, the authorization device is 
capable of realizing authorization without input for authorization of individuals when a user 
makes communication using the particular computer, by storing, to the user information storage 
section, that a user makes communication using the particular computer. 

[0015] According to another aspect of the other present invention, the computer can easily 
obtain unique data without use of the particular program with the other computers by copying 
the unique data stored in the unique data storage section to the region which may be used 
easily for the communication with the external computers. 

[0016] According to the other present invention, the system is capable of obtaining 
information of computer, for example, the information of types and functions of computers from 
unique data of clients and the obtained information can be used for authorization of 
communication. 

[0017] These together with other aspects and advantages which will be subsequently 
apparent, reside in the details of construction and operation as more fully hereinafter described 
and claimed, reference being had to the accompanying drawings forming a part hereof, wherein 
like numerals refer to like parts throughout. 

[0018] 

BRIEF DESCRIPTION OF THE DRAWINGS 

Fig. 1 is a structural diagram of the present invention. 
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Fig. 2 is a structural diagram of a personal computer in the present invention. 
Fig. 3 is a structural diagram of a computer information recording table in the present invention. 
Fig. 4 is a structural diagram of a user information recording table in the present invention. 
Fig. 5 is a flowchart for user registration in the present invention. 

Fig. 6 is a structural diagram of read operation of PCID and write operation thereof to Cookie in 
the present invention. 

Fig. 7 is a flowchart of user authorization in the present invention. 
[0019] 

DETAILED DESCRIPTION OF THE PREFERRED EMBODIMENTS 

[0020] An embodiment of the present invention will be described hereunder in detail with 
reference to the accompanying drawings. In this embodiment, by way of a nonlimiting example, 
the TV phone service is provided using a personal computer of a user. 

[0021] Fig. 1 illustrates a structure of an authorization system 100 of this embodiment. 

[0022] As shown in Fig. 1, personal computer 1 1 of a user has the functions required to 
implement the TV phone service. In order to provide the TV phone service, the personal 
computer 11 comprises a display screen for regenerating the received moving picture, a camera 
for taking photos of the moving picture to be transmitted, a speaker for regenerating the 
received voice signal, and a microphone for collecting voices to be transmitted. The personal 
computer 11 is described in further detail with reference of Fig. 2. 

[0023] Referring again to Fig. 1 , a router 12 is used as the device for communication 
between the personal computer 11 and external computers. In this embodiment, the router 12 
is connected to the personal computer via a local area network (LAN). 

[0024] A broad band line 13 connects between the router 12 and an IP (Internet Protocol) 
communication network 14 formed in the profile of ADSL, private line, cable television or optical 
fiber or the like. 

[0025] The IP communication network 14 realizes communication between the router 12 and 
a server 15. The IP communication network 14 may be a large size communication network like 
the Internet or may be a closed communication network only for the particular users. 
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[0026] The server 15 can provide various services to users and ensures security of 
communication through authorization for providing services. 

[0027] A database 1 6 records data for authorization. 

[0028] Fig. 2 illustrates a block diagram of the personal computer 1 1 . 

[0029] A CPU (Central Processing Unit) 201 controls the personal computer 1 1 . 

[0030] BIOS (Basic Input/Output System) 202 is a program for basic input and output for the 
personal computer 1 1 . The CPU 201 reads and executes the program of the BIOS 202. The 
BIOS 202 is stored in a non-volatile memory such as flash memory and in a ROM which 
disables erasing and reprogramming operations. 

[0031] A PCID 203 is an identifier for determining the personal computer 1 1 and is stored 
within the BIOS 202. The PCID 203 is considered to be stored in the format of the serial 
number, model name or type of the personal computer 1 1 . The PCID 203 is stored within the 
ROM which disables a reprogramming operation but it may be stored in the reprogrammable 
storage region with use of the falsification-preventing technology. In this embodiment, the PCID 
203 is stored in the non-reprogrammable ROM with recording of the serial number of the 
personal computer 1 1 . 

[0032] A display controller 204 displays a received moving picture on a display 205. 

[0033] A camera controller 206 records the picked-up images to a camera 207. 

[0034] A sound controller 208 regenerates the received voices with a speaker 209 and 
records voice signals with a microphone 210. 

[0035] A hard disk 21 1 stores programs and data in the personal computer 1 1 . The 
programs include the operating system (OS), and Web browser or the like. 

[0036] The external reference storage region 212 can be easily referenced by external 
computers among the storage regions of the hard disk 211. 

[0037] For example, a Cookie function of the Web browser enables the Web server to control 
the Web client to store the data such as reference record of the Web server as the Cookie data. 
The Web server can obtain the information in the Cookie without use of particular program only 
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with access to the Web server from the Web browser corresponding to the Cookie. 

[0038] A network communication device 213 can realize communication with external 
computer and router. In this embodiment, communication with the router 12 can be realized 
using the LAN. 

[0039] Fig. 3 illustrates a structural format of a computer information recording table 31 
stored in the database 16. 

[0040] The computer information recording table 31 previously records information of the 
personal computer 1 1 . 

[0041] The PCID 203 is recorded as the serial number of the computer! 1 in this embodiment. 

[0042] A model name 32 is the model name of the personal computer 1 1 . The server 1 5 can 
identify the model name 32 of the personal computer 11 from the PCID 203 of the personal 
computer 1 1 and can determine whether the TV phone service can be provided or not from the 
model name 32. 

[0043] Fig. 4 illustrates a structural format of a user information recording table 41 stored in 
the database 16. 

[0044] The user information recording table 41 is updated when a user of the TV phone 
service has conducted registration procedures to the server 15 in order to receive the relevant 
service. At the time of registration, the server 15 registers a user ID 42 for identifying the user 
and an authorization password 43 of the same user together with the PCID 203 of the personal 
computer 1 1 used by the relevant user and the model name 32 of the same personal computer. 
Through the use of only one personal computer 11 , a plurality of users may utilize the TV phone 
service. Moreover, a user may utilize the TV phone service using a plurality of personal 
computers 1 1 . 

[0045] Fig. 5 illustrates a flowchart 200 for registration of users to the server 1 5. 

[0046] A user refers to the homepage of the server 1 5 using the personal computer 1 1 in 
order to newly register the application of TV phone service. A user inputs on the homepage 
own user ID 42 and password 43 and performs manipulation for determination (operation 51). 

[0047] When manipulation for determination is conducted, the user ID 42 and password 43 
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inputted are then transmitted to the server 1 5 (operation 52). 

[0048] Next, the server 15 determines whether the personal computer 1 1 can provide the 
normal TV phone service or not. 

[0049] The server 15 requests the PCID 203 to the personal computer 1 1 (operation 53). 

[0050] The personal computer 11 receives an instruction from the server 15 in the operation 
53 and reads the PCID 203 of the BIOS 202 (operation 54). 

[0051] The PCID 203 obtained is transmitted to the server 15 (operation 55). 

[0052] When the PCID 203 of the personal computer 11 can be obtained, the server 15 
determines to register the PCID 203 to the database 16 together with the user ID 42 and 
password 43 of the user (operation 56). If the personal computer 11 is of the model having no 
PCID 203, the server 15 cannot obtain the PCID 203, and it registers only the user ID 42 and 
password 43 of the user. 

[0053] The database 16 searches the model name using the computer information recording 
table 31 and PCID 203 (operation 57). Here, the database 16 can determine whether the 
personal computer 1 1 can realize the TV phone service or not. Moreover, the server 1 5 can 
also make such a determination. If the personal computer 11 cannot provide the TV phone 
service, the database 16 suspends the registration work and notifies the server 15 that 
realization of the TV phone service is impossible. The server 15 notifies a user that the relevant 
personal computer 1 1 cannot realize the TV phone service. In this case, it is also considered 
whether to recommend use of a personal computer 1 1 which can realize the TV phone service 
whether to and recommend the peripheral devices to be added to the personal computer 1 1 to 
realize the TV phone service. 

[0054] When the personal computer 1 1 can provide the TV phone service, the user is 
registered (operation 58). The user ID 42 and password 43 are registered to the user 
information recording table 41 together with the PCID 203. 

[0055] Upon completion of registration, the database 16 transmits, to the user, notice of 
completion of registration through the server 15 and personal computer 11 (operation 59). The 
user is now capable of utilizing the TV phone service through the personal computer 11 . 
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[0056] Fig. 6 illustrates example 300 of a read operation of the PCID 203 and write operation 
thereof to the Cookie. 

[0057] For the read operation of the PCID 203 in operation 54, it is required for the personal 
computer 1 1 to previously install the program for the read operation. For the transmission of the 
PCID 203 to the server 15, a communication program is usually required. However, in the 
present invention, the PCID 203 is written as the Cookie, in relation to the homepage of the 
server 15 as illustrated in Fig. 6, to the external reference storage region to be referenced from 
external computers, for example, to the storing area of the Cookie used by the Web browser. 
When the PCID 203 is written as the Cookie, the server 15 can access the PCID 203 without 
addition of the communication program to the personal computer 11 only by accessing to the 
homepage of the server 1 5 with the Web browser from the personal computer 1 1 . 

[0058] Fig. 7 illustrates a flowchart 700 for authorization of user. 

[0059] When the router 12 assigns an IP address responding to the request for the IP 
address from the personal computer 1 1 , the personal computer 1 1 is connected to the IP 
network 14 (operation 701). 

[0060] A user requests, using the Web browser, the TV phone service to the personal 
computer 11 through the homepage of the server 15 (operation 702). 

[0061] The personal computer 11 reads the PCID 203 from the BIOS 202 and writes the 
PCID 203 to the Cookie (operations 703, 704). 

[0062] On the basis of the request from the user, the personal computer 1 1 sends a request 
for the TV phone service to the server 15 (operation 705). 

[0063] The server 15 gets the PCID 203 in the Cookie from the personal computer 11, based 
on the request of operation 705 from the personal computer 1 1 (operation 706). 

[0064] The server 1 5 transmits the PCID 203 to the database 16, while the database 16 
searches whether the PCID 203 is already registered or not in the user information recording 
table 41 of the database 16 on the basis of the PCID 203 obtained in the operation 706 
(operation 707). 

[0065] When it is proved as a result of search operation that the PCID 203 is already 
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registered, the server 15 can obtain the user ID 42 and password 43 from the user information 
recording table 41 based on the PCID 203 and thereby the user can be authorized (operation 
708). 

[0066] If any problem does not exist in the authorization process of the operation 708, the 
server 15 sends a response to the personal computer 1 1 for the request of the TV phone 
service in the operation 705 (operation 709) and starts the TV phone service (operation 711). 

[0067] If the PCID 203 is not yet registered, the server 15 instructs the personal computer 1 1 
to input the user ID 42 and password 43 of the user (operation 710). When the personal 
computer 11 has the PCID 203, the user of the user information recording table 41 can newly 
register such PCID 203 in this operation. 

[0068] Moreover, a plurality of users are requesting to receive the TV phone service using 
the personal computer 11, each user can be identified by transmitting the user ID 42 together 
with the PCID 203 in the operations 705 and 707. In the present invention, moreover, a user 
can be authorized without use of the password, because if another user illegally uses the user 
ID 42, this user cannot act as the user having the user ID 42, so long as this illegal user does 
not communicate using the personal computer 1 1 having the PCID 203. 

[0069] In this embodiment, the TV phone service using the personal computer has been 
described, but the present invention can be applied to other services, and the computer 
apparatuses other than personal computer can also be used. 

[0070] The system also includes permanent or removable storage, such as magnetic and 
optical discs, RAM, ROM, etc. on which the process and data structures of the present invention 
can be stored and distributed. The processes can also be distributed via, for example, 
downloading over a network such as the Internet. 

[0071] The many features and advantages of the invention are apparent from the detailed 
specification and, thus, it is intended by the appended claims to cover all such features and 
advantages of the invention that fall within the true spirit and scope of the invention. Further, 
since numerous modifications and changes will readily occur to those skilled in the art, it is not 
desired to limit the invention to the exact construction and operation illustrated and described, 
and accordingly all suitable modifications and equivalents may be resorted to, falling within the 
scope of the invention. 
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